1. Home
  2. CompTIA
  3. SY0-601
  4. CompTIA.SY0-601.v2024-06-16.q823 Practice Test (Page 150)

SY0-601 Exam Question 741

A security analyst has been asked to investigate a situation after the SOC started to receive alerts from the SIEM. The analyst first looks at the domain controller and finds the following events:

To better understand what is going on, the analyst runs a command and receives the following output:

Based on the analyst's findings, which of the following attacks is being executed?

    • SY0-601 Exam Question 742

    A security analyst is investigating an incident to determine what an attacker was able to do on a compromised laptop. The analyst reviews the following SIEM log:

    Which of the following describes the method that was used to compromise the laptop?

    • SY0-601 Exam Question 743

    A security analyst reports a company policy violation in a case in which a large amount of sensitive data is being downloaded after hours from various mobile devices to an external site.
    Upon further investigation, the analyst notices that successful login attempts are being conducted with impossible travel times during the same time periods when the unauthorized downloads are occurring. The analyst also discovers a couple of WAPs are using the same SSID, but they have non-standard DHCP configurations and an overlapping channel. Which of the following attacks is being conducted?

    • SY0-601 Exam Question 744

    An analyst is reviewing logs associated with an attack. The logs indicate an attacker downloaded a malicious file that was quarantined by the AV solution. The attacker utilized a local non-administrative account to restore the malicious file to a new location. The file was then used by another process to execute a payload. Which of the following attacks did the analyst observe?

    • SY0-601 Exam Question 745

    An employee received a word processing file that was delivered as an email attachment. The subject line and email content enticed the employee to open the attachment.
    Which of the following attack vectors BEST matches this malware?
    • Other Version
    773CompTIA.SY0-601.v2025-01-07.q105
    1784CompTIA.SY0-601.v2023-10-31.q215
    2072CompTIA.SY0-601.v2023-10-28.q229
    1829CompTIA.SY0-601.v2023-10-18.q228
    2194CompTIA.SY0-601.v2023-09-11.q184
    1687CompTIA.SY0-601.v2023-08-24.q172
    1516CompTIA.SY0-601.v2023-08-14.q169
    2050CompTIA.SY0-601.v2023-08-10.q218
    1562CompTIA.SY0-601.v2023-08-04.q162
    1920CompTIA.SY0-601.v2023-07-25.q193
    3692CompTIA.SY0-601.v2023-07-01.q430
    1797CompTIA.SY0-601.v2023-06-19.q138
    1843CompTIA.SY0-601.v2023-06-05.q152
    3524CompTIA.SY0-601.v2023-05-17.q419
    4036CompTIA.SY0-601.v2023-05-06.q443
    4213CompTIA.SY0-601.v2023-04-27.q438
    4275CompTIA.SY0-601.v2023-04-06.q422
    3293CompTIA.SY0-601.v2023-03-28.q353
    1635CompTIA.SY0-601.v2023-03-23.q103
    1448CompTIA.SY0-601.v2023-03-17.q98
    940CompTIA.SY0-601.v2023-03-16.q57
    1217CompTIA.SY0-601.v2023-03-15.q73
    4031CompTIA.SY0-601.v2023-03-02.q426
    1794CompTIA.SY0-601.v2023-02-10.q123
    1091CompTIA.SY0-601.v2023-02-01.q60
    11158CompTIA.SY0-601.v2022-07-18.q204
    5554CompTIA.SY0-601.v2022-06-18.q191
    97CompTIA.Getvalidtest.SY0-601.v2022-04-23.by.maximilian.374q.pdf
    6666CompTIA.SY0-601.v2022-02-07.q374
    4914CompTIA.SY0-601.v2021-11-14.q251
    93CompTIA.Actual4cert.SY0-601.v2021-07-29.by.kim.272q.pdf
    Latest Upload
    181CBIC.CIC.v2026-06-15.q123
    125Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16
    170HashiCorp.Terraform-Associate-004.v2026-06-15.q126
    130Peoplecert.ITILFNDv5.v2026-06-15.q26
    127Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28
    127Fortinet.NSE5_SSE_AD-7.6.v2026-06-15.q17
    297PMI.PMI-ACP.v2026-06-15.q523
    167LinuxFoundation.CKAD.v2026-06-15.q118
    161CrowdStrike.CCSE-204.v2026-06-12.q25
    198VMware.2V0-17.25.v2026-06-12.q49